Search CVE reports
51 – 52 of 52 results
Stack-based buffer overflow in st.c in slurpd for OpenLDAP before 2.3.22 might allow attackers to execute arbitrary code via a long hostname.
2 affected packages
openldap2, openldap2.2
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| openldap2 | — | — | — | — |
| openldap2.2 | — | — | — | — |
Some fixes available 7 of 9
pam_ldap and nss_ldap, when used with OpenLDAP and connecting to a slave using TLS, does not use TLS for the subsequent connection if the client is referred to a master, which may cause a password to be sent in cleartext and...
4 affected packages
libnss-ldap, openldap2, openldap2.2, openldap2.3
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libnss-ldap | — | — | — | — |
| openldap2 | — | — | — | — |
| openldap2.2 | — | — | — | — |
| openldap2.3 | — | — | — | — |